2 matches found
CVE-2019-3409
All versions up to UKBBWF820+1.0.0B06 of ZTE WF820+ LTE Outdoor CPE product are impacted by command injection vulnerability. Due to inadequate parameter verification, unauthorized users can take advantage of this vulnerability to control the user terminal system...
CVE-2019-3409
The CVE describes a command injection in ZTE WF820+ LTE Outdoor CPE, affecting UKBB_WF820+_1.0.0B06 and earlier. The root cause is inadequate input/data filtering when constructing executable commands, allowing an attacker to control the user terminal system. Several connected sources (NVD, CNVD,...